oscam.conf(5) oscam.conf(5)
NAME
oscam.conf - main configuration file for OSCam
SYNOPSIS
The main configuration file for OSCam contains global parameters such as debugging, logging, monitor, protocols and anti-cascading. sections in oscam.conf are nonrecurring. The
[global] section is required. All other sections are optional.
DESCRIPTIONS
The [global] section
nice = -20..+20
system priority, default:99
logfile = [filename][;syslog][;stdout]
logging targets, default: /var/log/oscam.log. You can define a maximum of one filename and additionally to log to stdout or syslog (you can also only log to stdout or syslog
and omit the filename).
loghistorysize = bytes
size of log message history in web interface or monitor, 0 = disabled , default:4096
maxlogsize = kbytes
maximum log file size, 0 = unlimited, default:10
disablelog = 0|1
1 = disable log file, default:0
cwlogdir = path
directory for CW logging, default:config dir
emmlogdir = path
directory for EMM logging, default:config dir
usrfile = filename
log file for user logging, default:none
log file format:
date
time
CWs per second
username
IP address of client
TCP/IP port
CWs found
CWs from cache
CWs not found
CWs ignored
CWs timed out
CWs tunneled
login time in unix/POSIX format
logout time in unix/POSIX format
protocol
disableuserfile = 0|1
1 = avoid logging although userfile is set, default:1 (also set automatically if userfile is empty)
usrfileflag = 0|1
usrfile logging mode:
0 = only client logon/logoff will be logged in usrfile (default)
1 = each zapping of a client will be logged in usrfile
saveinithistory = 0|1
1 = save SC init history to /tmp/.oscam/reader<number>, default:0
disablemail = 0|1
1 = disable saving NDS Videoguard mail messages from provider, default:1
mailfile = file
define file saving NDS Videoguard mail messages from provider, default:none
enableled = 0|1|2
0 = LED support disabled (default)
1 = LED support enabled for routers
2 = LED support enabled for Qbox HD
serialreadertimeout = milli-seconds
timeout for serial reader, default:1500
waitforcards = 0|1
1 = wait for local SCs on startup before opening network ports, default:1
waitforcards_extra_delay = delay
additional delay in milli-seconds after waiting for local SCs on startup before opening network ports, default:500
preferlocalcards = 0|1
1 = try decoding on local cards first, default:0
readerrestartseconds = seconds
seconds beetween restarts, 0 = disable reader restart, default:5
cachedelay = milli-seconds
value to delay cached requests, default:0
max_cache_time = seconds
maximum time CWs resist in cache after 1st client request, default:15
max_cache_count = count
maximum CWs in cache, default:1000
cacheexwaittime = milli-seconds
cache waiting time in milli-seconds for cache exchange, default:50
cacheexwaittime = delay
maximum wait time for a cache exchange entry in milli-seconds, default:50
cacheexenablestats = 0|1
1 = enable statistics for cache exchange mode, default:0
Please consider memory consumption.
clienttimeout = milli-seconds|seconds
value (clienttimeout in seconds < 100, else milli-seconds) for client process to wait for key, default:5
clientmaxidle = seconds
value for client process being idle before disconnect, 0 = idle disconnect disabled, default:120
suppresscmd08 = 0|1
0 = tell camd 3.5x, 3.57x and 3.78x clients not to request again for rejected CAID, service ID and provider ID combination, 1 = disable, can be overwritten per user in
oscam.user, default:0
fallbacktimeout = milli-seconds
time falling back to fallback reader, default:2500
sleep = minutes
time waiting for inactive users, default:none, can be overwritten per user in oscam.user
serverip = IP address
bind service to specified IP address, default:all
bindwait = seconds
value to wait for bind request to complete, default:120
netprio = priority
network priority, default:system given
resolvegethostbyname = 0|1
set mode for DNS resolving:
0 = getadressinfo (default)
1 = gethostbyname
failbancount = count
number of incorrect logins after an ip address will be blocked, default:0
failbantime = minutes
time for IP based blocking for clients with an invalid login attempt, 0 = failban is disabled, default:0
dropdups = 0|1
mode for duplicate client connections (requirement: uniq > 0):
0 = mark client as duplicate, but don't disconnect them (default)
1 = drop duplicate connections instead of marking as duplicate
unlockparental = 0|1
1 = unlock parental mode option to disable Seca pin code request for adult movie, default:0
double_check = 0|1
1 = ECM will be send to two or more readers with the same SC and the CWs will be verified against each other, lb_nbest_readers must be set to 2 or higher, default:0
lb_mode = mode
load balancing mode:
0 = load balance disabled, ECMs go to all readers (default)
1 = fastest reader first, after 5 ECMs the reader with the fastest
response time will be selected
2 = oldest reader first, reader with the longest no answer
3 = lowest usage level, the usage level will be calculated by the
sum of 5 ECMS response times, the higher a reader is busy, the
higher is usage level
lb_save = 0|counts
save auto load balance statistics:
0 = saving of auto load balance statistics disabled (default)
counts = save auto load balance statistics every counts ECMs
(minimum 100)
To save CPU power a minimum counts of 100 is recommended.
lb_nbest_readers = counts
set count of best readers for load balancing, default:1
lb_nfb_readers = counts
set count of fallback readers for load balancing, default:1
lb_reopen_mode = 0|1
load balancing reopen readers mode:
0 = standard late reopening of blocker readers (default)
1 = fast reopening of blocker readers
lb_nbest_percaid = CAID1:count1[,CAID2:count2]...
set count of best readers per CAIDs for load balancing, wildcard CAIDs with two-digit CAIDs possible, default:none
example: lb_nbest_percaid = 0100:4,0200:3,03:2,04:1
(wildcard CAIDs 03xx and 04xx)
lb_min_ecmcount = counts
minimal ECM count to evaluate load balancing values, default:5
lb_max_ecmcount = counts
maximum ECM count before resetting load balancing values, default:500
lb_reopen_seconds = seconds
time between retrying failed load balanced readers/CAIDs/providers/services, default:900
lb_retrylimit = milli-seconds
retry next load balanced reader only if response time is higher then lb_retrylimit, default:800
lb_savepath = filename
filenanme for saving load balancing statistics, default:/tmp/.oscam/stat
lb_stat_cleanup = hour
hours after the load balancing statistics will be deleted, default:336
lb_retrylimits = CAID1:time1[,CAID2:time2]...
load balancing retry limit time per CAID, wildcard CAIDs with two-digit CAIDs possible, default:none
example: lb_retrylimits = 12:0100,34:0200,5678:0300
(wildcard CAIDs 12xx and 34xx)
lb_noproviderforcaid = CAID1[,CAID2]...
ignore provider information for CAIDs to reduce load balancing statistic data, wildcard CAIDs with two-digit CAIDs possible, default:none
example: lb_noproviderforcaid = 0100,02,0300,04
(wildcard CAIDs 02xx and 04xx)
lb_max_readers = limit
restrict the reader count to limit during load balancing learning:
0 = unlimited (default)
limit = restrict load balancer readers to limit
lb_auto_betatunnel = 0|1
1 = enable automatic Betacrypt tunneling detection for CAIDs 1801, 1833, 1834, and 1835 for load balancing, Betacrypt defintion in oscam.user with betatunnel will be prefered,
default:1
lb_auto_betatunnel_prefer_beta = time factor
set automatic Betacrypt tunneling time factor prefering Betacrypt over Nagravision in percent, default: 50
The [monitor] section
port = 0|port
UDP port for monitor, 0 = monitor disabled, default:0
serverip = IP address
bind service to specified IP address, default:all
nocrypt = IP address|IP address range[,IP address|IP address range]...
unsecured monitor connection, default:none
example: nocrypt = 127.0.0.1,192.168.0.0-192.168.255.255
aulow = minutes
time no EMM occurs so that client is set to low, default:30
monlevel = 0|1|2|3|4
monitor level:
0 = no access to monitor
1 = only server and own procs
2 = all procs, but viewing only (default)
3 = all procs, reload of oscam.user possible
4 = complete access
monlevel can be overwritten per user in oscam.user
hideclient_to = seconds
time to hide clients in the monitor if not sending requests, 0 = disabled, default:0
appendchaninfo = 0|1
1 = append channel name on log messages, default:0
The [webif] section
httpport = [+]port
port for web interface, 0 = disabled, praefix + = enable SSL, default:none, required
httpcert = file
file for http SSL certificate, default
scam.pem
httpforcesslv3 = 0|1
1 = force using SSLv3, default:0
httpuser = username
username for password protection, default:none
httppwd = password
password for password protection, default:none
httpcss = path
path for external CSS file, default:none
httptpl = path
path for external templates, default:none
httprefresh = seconds
status refresh in seconds, default:none
httphideidleclients = 0|1
1 = enables hiding clients after idle time set in parameter hideclient_to, default:0
httpscript = path
path to an executable script which you wish to start from web interface, default:none
httpallowed = IP address|IP address range[,IP address|IP address range]...
http web interface connections allowed, default:none
example: httpallowed = 127.0.0.1,192.168.0.0-192.168.255.255
httpdyndns = hostname[,hostname][,hostname]
http web interface connections allowed, default:none
example: httpdyndns = host.example.com
httpdyndns = host1.example.com,host2.example.com
httpsavefullcfg = 0|1
write config:
0 = all not empty parameters, all not default parameters, all
parameters not containing the same value as the same
parameter in global configuration (default)
1 = all parameters
httpreadonly = 0|1
1 = read only modus for web interface, default:0
httphelplang = en|de|fr|<available wiki languages>
set right language for wiki entry point, default:en
The [lcd] section
enablelcd = 0|1
1 =enable LCD output, default:0
lcd_outputpath = path
path for LCD output, default:/tmp
lcd_hideidle = 0|1
1 = hide reader in LCD output if reader idle > 20 seconds, default:0
lcd_writeintervall = seconds
LCD refresh interval (minimum 5), default:10
The [csp] section
port = port
TCP port of Cardservproxy for cache exchange, default:none
serverip = IP
IP address of Cardservproxy for cache exchange, default:none
wait_time = milli-seconds
wait time for cache exchange before sending ECM to Cardservproxy, default:none
The [camd33] section
port = 0|port
TCP port for camd 3.3x clients, 0 = disabled, default:0
serverip = IP address
bind service to specified IP address, default:all
nocrypt = IP address|IP address range[,IP address|IP address range]...
unsecured camd 3.3x client connection, default:none
example: nocrypt = 127.0.0.1,192.168.0.0-192.168.255.255
passive = 0|1
1 = force passive camd 3.3x client, default:0
key = 128 bit key
key for camd 3.3x client encryption, default:none
example: key = 01020304050607080910111213141516
The [camd35|cs357x] section
port = 0|port
UDP port for camd 3.5x / 3.57x clients, 0 = disabled, default:0
serverip = IP address
bind service to specified IP address, default:all
suppresscmd08 = 0|1
0 = tell camd 3.5x / 3.57x clients not to request again for rejected CAID, service ID and provider ID combination, 1 = disable, can be overwritten per user in oscam.user,
default:0
The [cs378x] section
port = 0|port[@CAID][
rovid][,provid]...[;port@CAID[
rovid][,provid]...]...
TCP port/CAID/provid definitions for camd 3.78x clients, 0 = disabled, default:0
examples: port = 10000@0100:100000;20000@0200:200000,300000,400000
port = 30000
serverip = IP address
bind service to specified IP address, default:all
suppresscmd08 = 0|1
0 = tell camd 3.78x clients not to request again for rejected CAID, service ID and provider ID combination, 1 = disable, can be overwritten per user in oscam.user, default:0
The [newcamd] section
key = DES key
default key for newcamd client encryption, default:none
example: key = 0102030405060708091011121314
port = port[{DES key}]@CAID[
rovid][,provid]...[;port[{DES key}]@CAID[
rovid][,provid]...]...
TCP port/DES key/CAID/provid definitions, default:none
example: port = 10000@0100:100000;20000{0102030405060708091011121314}@0200:200000,300000
Each CAID requires a separate port. If you don't specify a DES key for a port, the default DES key will be used.
serverip = IP address
bind newcamd service to specified IP address, default:all
allowed = IP address|IP address range[,IP address|IP address range]...
newcamd client connections allowed from, default:none
example: allowed = 127.0.0.1,192.168.0.0-192.168.255.255
keepalive = 0|1
0 = disable newcamd keepalive modus, default:0
mgclient = 0|1
1 = provide share information of all available CAIDs and provider IDs to mgcamd clients, default:0
The [radegast] section
port = 0|port
TCP/IP port for radegast clients, 0 = disabled, default:0
serverip = IP address
bind service to specified IP address, default:all
allowed = IP address|IP address range[,IP address|IP address range]...
client connections allowed from, default:none
example: allowed = 127.0.0.1,192.168.0.0-192.168.255.255
user = username
user name for radegast client
The [serial] section
device = <user>@<device>[:baud][?option1=value1[&option2=value2]]
parameters:
user = account
device = serial device name
option = timeout = milli-seconds, timeout for connection,
default:50
delay = milli-seconds, additional delay between two
characters, default:0
supported serial devices:
HSIC (humax sharing interface client)
SSSP (simple serial sharing protocol)
bomba (BOMBA firmware)
dsr9500 (DSR 9500)
The [cccam] section
port = 0|port[,0|port]...
TCP/IP ports for CCcam clients, 0 = disabled, default:0
version = <main version>.<version>.<sub version>
define CCcam version, minimum CCcam version 2.0.11, used with original CCcam only, default:none
example: version = 1.2.34
reshare = level
reshare level for CCcam clients (default:10):
0 = no resharing
1 = resharing for direct peer only
2 = resharing for direct peer and next level
x = resharing for direct peer and next x level
reshare_mode = mode
CCcam reshare mode:
0 = reader reshares only received SCs for CCcam readers,
defined filters/CAIDs/provids on other readers (default)
1 = reader reshares received SCs (like=0) and defined services
2 = reader reshares only defined reader services as virtual SCs
3 = reader reshares only defined user services as virtual SCs
4 = reader reshares only received SCs
Every server is shared as hop = 0 and with defined reshare values.
Service reshare only works if positive services defined: no service - no reshare!
ignorereshare = 0|1
CCcam reshare setting:
0 = use reshare setting of server (default)
1 = use reshare setting of reader or user
stealth = 0|1
1 = behaviour like the original CCcam: no activate partner detection and extended OSCam-CCcam protocol, prevent other OSCam to detect the server as OSCam server, default:0
minimizecards = mode
mode how to provide CCcam servers to CCcam clients:
0 = no aggregation, remove duplicates only (default)
1 = based on minimum hop: two SCs with different hops are
summarized, new SCs get a smaller hop
2 = aggregation based on CAIDs: all SCs with the same CAIDs
will be merged, provider (maximum 32) will be merged, too
updateinterval = seconds
interval to provide share list update to CCcam clients, values <= 10 are invalid and will be set to 30, default:240
keepconnected = 0|1
set CCcam keepalive modus:
0 = disconnect client when maximum idle time is reached
1 = keep client connected (default)
forward_origin_card = 0|1
1 = forward ECM request to reader holding this card, load balancer, fallback and caching will be disabled, default:0
nodeid = ID
set CCcam node ID in hex, default:none
example: nodeid = 0a0b0c0d0e0f1011
The [gbox] section
port = 0|port
UDP port for gbox clients, 0 = disabled, default:0
password = password
password for gbox server
gsmsfile = file name
gsms file for gbox server, default:none
The [dvbapi] section
enabled = 0|1
1 = DVB API enabled, default:0
Create file /tmp/.pauseoscam to pause DVB API, e.g. if STB goes into standby and OSCam remains as SC server only.
user = username
user name for DVB API client, default:anonymous
ignore = <CAID>[,<CAID>]... (detached by oscam.dvbapi, obsolete)
CAIDs to be ignored, default:none
services = <service ID>[,<service ID>]... (detached by oscam.dvbapi, obsolete)
services to be prioritized, default:none
priority = <CAID>:<provider ID>[,CAID:<provider ID>]... (detached by oscam.dvbapi, obsolete)
CAIDs and provider IDs to be prioritized, default:CAIDs and provider IDs of local SCs will be prioritized
au = 0|1|2
AU mode:
0 = disable AU (default)
1 = enable AU
2 = enable AU, override AU settings of client,
set answering reader as AU reader
pmt_mode = 0|1|2|3|4|5
PMT mode:
0 = use camd.socket and PMT file, default
1 = disable reading PMT file
2 = disable camd.socket
3 = read PMT file on startup only
4 = do not use signal handler for monitoring /tmp
5 = do not use signal handler for monitoring /tmp,
disable camd.socket
request_mode = 0|1
CAID request mode:
0 = try all possible CAIDs one by one (default)
1 = try all CAIDs simultaneously
boxtype = dbox2|dreambox|dm7000|duckbox|ufs910|ipbox|ipbox-pmt|qboxhd|coolstream|neumo|pc
set boxtype, auto detection of DVB API will be aspired, default:dreambox
ipbox with camd.socket support, currently only with PGI image version 0.6 or above, verified on HD models only
ipbox-pmt can be used on any DGS based images (with or without camd.socket support), verified on HD models only
pc is for generic pc support (currently supported on VDR with vdr-plugin-dvbapi)
cw_delay = milli-seconds
delay of CW writing, default:none
reopenonzap = 0|1
1 = reopen demux devices on each channel switching, default:0
The [anticasc] section
enabled = 0|1
1 = enabled anti-cascading, default:0
numusers = quantity
anti-cascading: user per account, 0 = anti-cascading disabled, default:0
sampletime = minutes
duration of sample, default:2
samples = quantity
quantity of samples over limit, default:10
penalty = 0|1|2
level of penalty:
0 = only logging (default)
1 = send fake CWs
2 = disbable user temporary
3 = send delayed CWs
penalty can be overwritten per user in oscam.user
aclogfile = filename
file for anti-cascading logging, default:none
fakedelay = milli-seconds
fake delay time, default:1000, minimum value is 100, maximum value is 3000
denysamples = quantity
how many samples should be penalized, default:8
MONITOR
monitor commands:
· login <user> <password>
login (for unencrypted connections only)
· getuser <user> <parameter>=<value>
get parameter for user
· setuser <user> <parameter>=<value>
set parameter for user
· setserver <parameter>=<value>
set parameter for server
· exit
exit monitor
· log <on|onwohist|off>
enable|enable without hitory|disable logging for 2 minutes
· status
list of current processes and clients
· shutdown
shutdown OSCam
· restart
restart OSCam
· keepalive
send keepalive
· reload
reinit user db, clients and anti-cascading, for newcamd connections: after reloading the provid, please restart newcamd client
· details <PID>
details about selected PID
· reread
read again
· debug <level>
set debug level (monlevel > 3 required)
debug level mask:
0 = no debugging (default)
2 = ATR parsing info, ECM dumps, CW dumps
4 = traffic from/to the reader
8 = traffic from/to the clients
16 = traffic to the reader-device on IFD layer
32 = traffic to the reader-device on I/O layer
64 = EMM logging
255 = debug all
· version
show OSCam version
· commands
show all valid monitor commands
WEB INTERFACE
· template system
The web interface allows you to create your own template. For developing your own template request the orignal template with the non-linked page savetemplates.html. Store your
own template in the directory specified by httptpl.
CACHING
types of ECM caching:
· cache1
ECM and CW in cache already.
· cache2
ECM and checksum in cache already.
LOGGING
log file format:
CAID&ProviderID/ECMPID/ServiceID/length:checksum
EXAMPLES
[global]
logfile = /var/log/oscam/oscam.log
usrfile = /var/log/oscam/oscamuser.log
waitforcards = 1
[monitor]
port = 988
monlevel = 1
nocrypt = 127.0.0.1
[webif]
httpport = 8888
httpuser = test
httppwd = test
httphelplang = de
httprefresh = 15
httpallowed =127.0.0.1,192.168.178.0-192.168.178.255
[newcamd]
key = 0102030405060708091011121314
port = 10000@0100:100000;20000{0102030405060708091011121314}@0200:200000,300000,400000
[radegast]
port = 30000
user = radegastuser
allowed = 127.0.0.1,192.168.0.0-192.168.255.255
[camd33]
port = 40000
serverip = 192.168.0.1
key = 01020304050607080910111213141516
[cs378x]
port = 50000@0300:600000
[gbox]
hostname = host.example.com
port = 56789
password = password4
SEE ALSO
list_smargo(1), oscam(1), oscam.ac(5), oscam.cacheex(5), oscam.cert(5), oscam.dvbapi(5), oscam.guess(5), oscam.ird(5), oscam.provid(5), oscam.server(5), oscam.services(5),
oscam.srvid(5), oscam.tiers(5), oscam.user(5), oscam.whitelist(5)
oscam.conf(5)
